Comments for ha.ckers.org web application security labhttp://ha.ckers.org/blog
Web Application Security BlogTue, 03 Mar 2015 22:37:13 +0000Comment on FireSheep by Paulhttp://ha.ckers.org/blog/20101115/firesheep/#comment-132781
PaulWed, 16 Feb 2011 18:06:20 +0000http://ha.ckers.org/blog/20101115/firesheep/#comment-132781Hi sorry if this is a dumb question but I am from a generation that grew up without computers so my recent self schooling has some gaps that are quite basic. Anyway I recently downloaded Firefox and then Firesheep but cannot work out how to open Firesheep... any clues please. Thanks PaulHi sorry if this is a dumb question but I am from a generation that grew up without computers so my recent self schooling has some gaps that are quite basic. Anyway I recently downloaded Firefox and then Firesheep but cannot work out how to open Firesheep… any clues please. Thanks Paul
]]>Comment on And Beyond… by idhttp://ha.ckers.org/blog/20101201/and-beyond/#comment-132764
idTue, 28 Dec 2010 19:45:48 +0000http://ha.ckers.org/blog/20101201/and-beyond/#comment-132764@PaPPy, please see the FAQ.@PaPPy, please see the FAQ.
]]>Comment on Slowloris HTTP DoS by habbatussaudaaahttp://ha.ckers.org/blog/20090617/slowloris-http-dos/#comment-132720
habbatussaudaaaTue, 28 Dec 2010 10:52:50 +0000http://ha.ckers.org/blog/20090617/slowloris-http-dos/#comment-132720slowloris is the besttttttttttttslowloris is the bestttttttttttt
]]>Comment on And Beyond… by PaPPyhttp://ha.ckers.org/blog/20101201/and-beyond/#comment-132222
PaPPyFri, 24 Dec 2010 00:44:49 +0000http://ha.ckers.org/blog/20101201/and-beyond/#comment-132222Why have the forums been down for so long?Why have the forums been down for so long?
]]>Comment on And Beyond… by avetis.kazarianhttp://ha.ckers.org/blog/20101201/and-beyond/#comment-132177
avetis.kazarianThu, 23 Dec 2010 15:01:21 +0000http://ha.ckers.org/blog/20101201/and-beyond/#comment-132177Thank you for your posts.
I always had a great time while reading your blog.
Hope you'll be back some day, somewhere else maybe :]Thank you for your posts.

I always had a great time while reading your blog.

Hope you’ll be back some day, somewhere else maybe :]

]]>Comment on Conversations With a Blackhat by Lindsayhttp://ha.ckers.org/blog/20100314/conversations-with-a-blackhat/#comment-131668
LindsayTue, 21 Dec 2010 18:18:09 +0000http://ha.ckers.org/blog/20100314/conversations-with-a-blackhat/#comment-131668Like Connie I have a question for a hacker and would like to speak with one. My request is for a black hat, which I am not sure if anyone on this site/ House of Hackers site are. I'm not even sure if my request can even be completed, but I guess that is the point of me trying to find the best computer hackers. Please contact me back so I can see if it is even possible. Thanks.Like Connie I have a question for a hacker and would like to speak with one. My request is for a black hat, which I am not sure if anyone on this site/ House of Hackers site are. I’m not even sure if my request can even be completed, but I guess that is the point of me trying to find the best computer hackers. Please contact me back so I can see if it is even possible. Thanks.
]]>Comment on And Beyond… by Greghttp://ha.ckers.org/blog/20101201/and-beyond/#comment-131601
GregMon, 20 Dec 2010 18:52:02 +0000http://ha.ckers.org/blog/20101201/and-beyond/#comment-131601Thank you.
This blog was one of the first I followed when I only got started with programming and security. It had a great influence on what I do for a living today, and I hereby express my gratitude for it.
Good luck.Thank you.
This blog was one of the first I followed when I only got started with programming and security. It had a great influence on what I do for a living today, and I hereby express my gratitude for it.

Good luck.

]]>Comment on Detecting Malice eBook by albinohttp://ha.ckers.org/blog/20091026/detecting-malice-ebook/#comment-131561
albinoMon, 20 Dec 2010 01:05:54 +0000http://ha.ckers.org/blog/20091026/detecting-malice-ebook/#comment-131561Consider me on the list of people who'd buy it in hard copy.Consider me on the list of people who’d buy it in hard copy.
]]>Comment on And Beyond… by Ginohttp://ha.ckers.org/blog/20101201/and-beyond/#comment-131555
GinoSun, 19 Dec 2010 22:52:20 +0000http://ha.ckers.org/blog/20101201/and-beyond/#comment-131555Although I only read a small handful of blogs (and I'm going to miss your posts here that generally lead me off into A.D.D. land with ideas and research) .. I have to say congrats on #1000 and reclaiming a subset of your life brotha :)Although I only read a small handful of blogs (and I’m going to miss your posts here that generally lead me off into A.D.D. land with ideas and research) .. I have to say congrats on #1000 and reclaiming a subset of your life brotha
]]>Comment on And Beyond… by Jimhttp://ha.ckers.org/blog/20101201/and-beyond/#comment-131554
JimSun, 19 Dec 2010 22:52:00 +0000http://ha.ckers.org/blog/20101201/and-beyond/#comment-131554You are not alone in your unhappiness and your loss of love for security. Why does security burn us out? Why did we lose our love for it? Sometimes I think its because the industry as a whole has become very stagnant - every time I hear about a "new" vulnerability, it seems to be something I've seen before and not new at all. Being a security expert has become very mechanical and is as intellectually stimulating as it used to be. It used to be about finding the latest vulnerabilities and breaking things so that you can learn how they work. Now its about applying the latest monthly (or weekly, or daily) patch, reviewing the daily log file, verifying your AV signatures are current (which does you no good nowadays). Have we reached a plateau? Is all of the excitement gone? I remember how excited I was when I first learned about SQL Injection. "Wow! You can really do that? I would never thought that something like that could be done! This is awesome!". Now, its like "Oh, yay, another XSS/CSRF/buffer overflow/SQL Injection/". Am I missing something, or has security really become that boring?You are not alone in your unhappiness and your loss of love for security. Why does security burn us out? Why did we lose our love for it? Sometimes I think its because the industry as a whole has become very stagnant - every time I hear about a “new” vulnerability, it seems to be something I’ve seen before and not new at all. Being a security expert has become very mechanical and is as intellectually stimulating as it used to be. It used to be about finding the latest vulnerabilities and breaking things so that you can learn how they work. Now its about applying the latest monthly (or weekly, or daily) patch, reviewing the daily log file, verifying your AV signatures are current (which does you no good nowadays). Have we reached a plateau? Is all of the excitement gone? I remember how excited I was when I first learned about SQL Injection. “Wow! You can really do that? I would never thought that something like that could be done! This is awesome!”. Now, its like “Oh, yay, another XSS/CSRF/buffer overflow/SQL Injection/”. Am I missing something, or has security really become that boring?
]]>